Moth is a cool VMware image with a set of vulnerable Web Applications and scripts, that can be used:
1. Testing Web Application Security Scanners
2. Testing Static Code Analysis tools (SCA)
3. Web Application Security
After reading “anantasec-report.pdf” the motivation which is included in the release file which you are free to download. The main objective of this tool is to give the community a ready to use testbed for web application security tools. For almost every web application vulnerability that exists in the wild, there is a test script available in moth.
It is a great learning and testing tool to cross test your appliaction and other tools for POC purposes
There are three different ways to access the web applications and vulnerable scripts included in moth:
1. Directly
2. Through mod_security
3. Through PHP-IDS (only if the web application is written in PHP)
Both mod_security and PHP-IDS have their default configurations and they show a log of the offending request when one is found. This is very useful for testing web application scanners, and teaching students how web application firewalls work. The beauty is that a user may access the same vulnerable script using the three methods; which helps in lot of learning process.
Download Moth Here
Have Fun !!!
Related External Links
Related External Links
Searches leading to this post:vulnerable web application, moth web server, moth – A VMware image with vulnerable web applications, vulnerable applications live cd, moth livecd, moth vmware password, php vulnerable application, security moth default password, vulnerable applications testing, vulnerable applications TOOLS, vulnerable web apllication vmware, vunlerable web application, web app moth tutorial, learing vulnearble application, moth web application tutorial, live cd vulnerable, live CD vulnerable application, metasploit moth, moth application, moth live cd computer security
You must log in to post a comment.